Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-427

CWE-427

Uncontrolled Search Path Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

1,171 vulnerabilities with CWE-427

CVE-2024-48992 HIGH

needrestart < 3.8 - Local Privilege Escalation via RUBYLIB Environment Variable

CVE-2024-48990 HIGH

Ubuntu needrestart Privilege Escalation

CVE-2024-49592 MEDIUM

McAfee Total Protection <16.0.53 - Privilege Escalation

CVE-2024-38668 MEDIUM

Intel(R) Quartus(R) Prime Standard Edition <23.1.1 - Privilege Esca...

CVE-2024-38387 MEDIUM

Intel(R) Graphics Driver <15.45 - Privilege Escalation

CVE-2024-38383 MEDIUM

Intel(R) Quartus(R) Prime Pro Edition <24.2 - Privilege Escalation

CVE-2024-37024 MEDIUM

Intel(R) ACAT <3.11.0 - Privilege Escalation

CVE-2024-36253 MEDIUM

Intel(R) SDP Tool - Privilege Escalation

CVE-2024-36245 MEDIUM

Intel(R) VTune(TM) Profiler <2024.2.0 - Privilege Escalation

CVE-2024-35245 MEDIUM

Intel(R) PROSet/Wireless WiFi <23.60 - Privilege Escalation

CVE-2024-34167 MEDIUM

Intel(R) Server Board S2600ST - Privilege Escalation

CVE-2024-34165 MEDIUM

Intel(R) oneAPI DPC++/C++ Compiler <2024.2 - Privilege Escalation

CVE-2024-34164 MEDIUM

Intel(R) MAS <2.5 - Privilege Escalation

CVE-2024-34028 MEDIUM

Intel(R) Graphics Offline Compiler - Privilege Escalation

CVE-2024-31407 MEDIUM

Intel(R) High Level Synthesis Compiler <24.1 - Privilege Escalation

CVE-2024-28952 MEDIUM

Intel Integrated Performance Primitives < 2021.12.0 - Authenticated Privilege Escalation via Uncontrolled Search Path

CVE-2024-28950 MEDIUM

Intel(R) oneAPI Math Kernel Library <2024.2 - Privilege Escalation

CVE-2024-28881 MEDIUM

Intel(R) Fortran Compiler Classic <2021.13 - Privilege Escalation

CVE-2024-26017 MEDIUM

Intel(R) Rendering Toolkit <2024.1.0 - Privilege Escalation

CVE-2024-23312 MEDIUM

Intel(R) Binary Configuration Tool <3.4.5 - Privilege Escalation

CVE-2024-2208 HIGH

Sound Research SECOMN64 Driver - Uncontrolled Search Path Element

CVE-2024-2207 MEDIUM

Sound Research SECOMN64 Driver - Uncontrolled Search Path Element

CVE-2024-47942 HIGH

Solid Edge SE2024 < 224.00.09.04 - DLL Hijacking via Crafted DLL File

CVE-2024-10389 HIGH

Safearchive < 0.0.0-20241025131057-f7ce9d7b6f9c - Path Traversal and Arbitrary File Write via Symbolic Link Extraction

CVE-2024-50583 MEDIUM

Whale browser Installer <3.1.0.0 - Code Injection

Previous Page 15 of 47 Next

Details

Vulnerabilities 1,171

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy